Senior Security Engineer I

We are seeking a Senior Security Engineer I with 8+ years of experience in security operations to join our expanding Information Security team. The ideal candidate will have hands-on knowledge of AWS, cloud architecture, and security best practices. In this role, you will work directly with internal teams to ensure overall environment security, visibility, and compliance measures are adhered to and enforced. You will evaluate existing technical capabilities and systems, identify opportunities for improvements, and maintain standard operating procedures and protocols to ensure Security Operations continues to meet operational requirements. The minimum salary based on qualifications and experience is $144,000.

• Balance the needs of delivering technical security assurance while still allowing development and operations teams to move quickly
• Conduct cloud and on-prem vulnerability assessments, analyzing vulnerabilities, determining severity, and recommending paths for eliminating or mitigating security gaps
• Act as a technical incident point person in the event of a security incident. Triage, investigate and respond to potential incidents. Provide on-call support when needed.
• Work with Engineering and IT teams to ensure that programmatically-deployed infrastructure is built following OppFi’s security principles
• Ensure the proper security controls are deployed within our cloud environments to address confidentiality, integrity, and availability of these services
• Build automation for in-house network, service, and endpoint security testing
• Create Deployment Pipeline security integrations
• Help with the identification and evaluation of security gaps, and translate them into functional specifications to implement
• Maintain a current understanding of the security threat landscape. Research and review new technologies and trends.

• 8+ years of experience in security operations
• Strong attention to detail with an analytical mind and outstanding problem-solving skills
• Solid Understanding of Incident response process and procedures including in the cloud
• Ability to work under pressure in a fast-paced environment
• Expert knowledge of AWS, Azure cloud infrastructure and IT infrastructures
• Able to automate/script daily tasks using Python, Bash or equivalent
• Experience with Terraform and CloudFormation
• Experience working in a containerized environment is a plus (AWS ECS, EKS, Fargate)
• Experience with AWS SSO, and IDP configurations in AWS
• Has worked with identity and access management solutions such as PingOne, OneLogin, OKTA, and others
• Experience in security hardening for Linux, Windows, Macs, Containers
• Experience with security operations systems: MDM, DLP, Firewalls, CASB, Log collectors, SIEM/SOC, EDR, VPN
• Experience with security and risk management practices and security frameworks (FFIEC, NIST, ISO, CIS Benchmarks, SOC2)
• Security certifications a plus (Certified Information Systems Security Professional (CISSP),Certified Ethical Hacker (CEH), PCNSE, Security +, AWS Certified Solutions Architect Associate, Certified Cloud Security Professional (CCSP), CompTIA Security +, Certified Information Security Manager (CISM))
• Expected to perform on-call duties